Skip to main content

OpenSSH < 9.9p2 DoS

  • March 7, 2025
  • 4 replies
  • 50 views
M
Forum|alt.badge.img+3

Does anyone know how to fix this vulnerability on Mac without installing homebrew on machine ? 

    4 replies

    AJPinto
    Forum|alt.badge.img+26
    • AJPinto
    • Legendary Contributor
    • March 7, 2025

    Installing it through Homebrew will not help, as that installs a separate SSH binary and does not update the one bundled in with macOS.

    Do you have a link to the vulnerability or the NIST details? We disabled SSH years ago on macOS due to vulnerabilities and Apple being very slow to patch SSH.

    M
    Forum|alt.badge.img+3
    • msayyad
    • Author
    • New Contributor
    • March 10, 2025

    Don't have NIST details. But hope this will help you. https://www.openssh.com/txt/release-9.9p2

    Shyamsundar
    Forum|alt.badge.img+13
    • Shyamsundar
    • Jamf Heroes
    • March 11, 2025

    if I am not wrong, even though you install with Homebrew it will not patch the existing one, it will install a new one with the latest version, you need to wait for Apple to release an update, did you tried it with the latest beta version 15.4 beta 3 and check the openSSh version

    M
    Forum|alt.badge.img+3
    • msayyad
    • Author
    • New Contributor
    • March 17, 2025

    Yes tried with 15.3 it shows SSH 9.8 version 

    Terms & ConditionsCookie settingsAccessibility statement